Blog about anti-virus software and its issues.

The videos from NorthSec 2017 Conference have finally been published, check them out! Past editions videos are also on our YouTube channel. Want to come to Montreal for NorthSec 2018? The CFP opens in November 2017, mark your calendars & propose something…

Sensitive data points on millions of Dow Jones publication customers were exposed in a massive cloud leak.

I’ve been a user of the mobile/web application named “GoodSAM” which is an application where the Ambulance service in London or the East Midlands can dispatch “Responders&#8…

Devil's Ivy is a vulnerability deep in the communication layer. When we began a security analysis of an Axis security camera, we had no idea we would find a vulnerability that affects so many devices. Read on for the technical writeup.

Nine times out of ten, my goal when using a Rubber Ducky on pentests is to
launch an Empire or Meterpreter session. However, for the Ducky to type out
an entire stager often takes too much time to be practical for most
real-world USB attacks. This article…

Technical research from CyberArk Labs and Red Team security experts to help you think like an attacker by keeping you ahead of the latest threats.

Opinions expressed are solely my own and do not express the views or opinions of my employer. Information is provided for educational…

We launched our HackerOne program a year ago to increase the security of Flexport.

To provide transparency into our ongoing efforts to protect your privacy and security on the Internet, we are releasing a security audit of Firefox Accounts ...

Firstly the advice in this article is not designed for people who are trying to evade spying or some other stuff, it's just to avoid marketers or avoid giving your number to someone you don't want to. So I'm going over to the states at the end of this week

Overview Assuming that you are capable of setting up a fake access point and setup Apache configuration accordingly to fool victim(s) I am beginning this walk-through. In this scenario, we are using one wireless adapter and an Ethernet connection (under VM)…

  Intel has introduced the new I9 CPU which is seen as HEDT (High-End-DeskTop) product. The micro architecture is in many respects shared with the new Skylake server micro architecture.I f his…

1 points and 0 comments so far on reddit

By  Thomas Kilbride Not that long ago, motorized hoverboards were in the news – according to widespread reports, they had a tendency to c...

Vincent Yiu has tweeted some really useful red teaming tips. Red Tip #1: Profile your victim and use their user agent to mask your traffic. Alternatively use UA from software such as Outlook. Red t…

Scientists have developed a new method that can stamp things with "atomic fingerprints" to keep counterfeit goods at bay.

Last week I wrote about how Life Is About to Get a Whole Lot Harder for Websites Without HTTPS. Somewhere in the comments there, the discussion went off on a tangent about commercial CAs, the threat Let's Encrypt poses to them and subsequently, the value…

We’re excited to share NuCypher KMS, a decentralized key management system (KMS) for public blockchains.